Security: incognito browser mode recoverable in normal browsing mode
Reported by
markkoh...@gmail.com,
Mar 15 2016
|
||||||
Issue descriptionThis template is ONLY for reporting security bugs. If you are reporting a Download Protection Bypass bug, please use the "Security - Download Protection" template. For all other reports, please use a different template. Please see the following link for instructions on filing security bugs: http://www.chromium.org/Home/chromium-security/reporting-security-bugs VULNERABILITY DETAILS Chrome browser in incognito recoverable in normal browser windows VERSION Chrome Version: Version 50.0.2661.18 dev-m Operating System: windows 10 64 bit Version 1511 REPRODUCTION CASE I do not know how to do this but wish to report the bug as I discovered it and imagine it is easily replicated. I was browsing in normal tabs and incognito tabs simultaneously. The browser crashed for unknown reason. When I recovered the session, my incognito tabs opened in standard browser tabs and were no longer private, infact tracked and everything. FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION Type of crash: browser, incognito tabs Crash State: browser stopped responding, recovered upon relaunch Client ID (if relevant): [see link above]
,
Mar 15 2016
,
Mar 16 2016
@markkohner: Could you please respond to the comment #1 Appreciate your help. Thank you.
,
Mar 16 2016
hello,I will try and enable logging and reproduce the results or record a video of it. I will post if I find anything but I do not know what might have caused it so I am not sure how to reproduce.
,
Mar 17 2016
Thank you for providing more feedback. Assigning to requester "rnimmagadda@chromium.org" for another review. For more details visit https://sites.google.com/a/chromium.org/dev/issue-tracking/autotriage - Your friendly Sheriffbot
,
Mar 17 2016
I was not able to reproduce it with browsers crashing. When it originally happened, I was forced to terminate the two browser windows at once 'stopped responding' was the message; and when I started Chrome the next time I was prompted to recover the last session. The last session included an incognito tab, but somehow it had saved this session and restored it as a normal window. I am not technically inclined enough to interpret this accurately but I think this does represent a possible security or at least privacy issue. Unfortunately, it seems hard to reproduce. Infinite loops in the browser windows seem to be independent and they do not cause the same type of crash.
,
Mar 18 2016
@markkohner: Could you please let us know if we can close this issue, since it is not crashing. Thank you.
,
Apr 13 2016
Closing the issue as did not hear back from user again. Please feel free to raise a new issue or reopen if it still persists or reappears. |
||||||
►
Sign in to add a comment |
||||||
Comment 1 by mea...@chromium.org
, Mar 15 2016Labels: -Restrict-View-SecurityTeam